Aggregator

CVE-2025-0877 | AtaksAPP Reservation Management System up to 4.2.2 cross site scripting

VulDB Recent Entries
1 year 3 months ago
A vulnerability, which was classified as problematic, was found in AtaksAPP Reservation Management System up to 4.2.2. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-0877. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Sitecore 0-Day Vulnerability Let Attackers Execute Remote Code

Cyber Security News
1 year 3 months ago

A newly disclosed critical vulnerability in Sitecore Experience Platform (CVE-2025-27218) allows unauthenticated attackers to execute arbitrary code on unpatched systems.  The flaw, rooted in insecure deserialization practices, affects Sitecore Experience Manager (XM) and Experience Platform (XP) versions 8.2 through 10.4 prior to patch KB1002844.  Security firm Assetnote discovered the vulnerability, which leverages Sitecore’s misuse of […]

The post Sitecore 0-Day Vulnerability Let Attackers Execute Remote Code appeared first on Cyber Security News.

Guru Baran

Managed ad